Enabling Application Protection

Scenario

To protect Java applications on Linux servers, enable application protection for the servers. HSS will install the RASP plug-in on the servers, and you will need to configure startup parameters.

Enabling Application Protection

  1. Log in to the management console.

  2. Click image1 in the upper left corner of the page, select a region, and choose Security > Host Security Service. The HSS page is displayed.

  3. Choose Prevention > Application Protection. Click the Protected Servers tab.

    Note

    If your servers are managed by enterprise projects, you can select an enterprise project to view or operate the asset and scan information.

    **Figure 1** Viewing protection settings

    Figure 1 Viewing protection settings

  4. Click Add Server. Select servers in the dialog box that is displayed.

    Note

    You can select a default security policy or create a security policy.

    **Figure 2** Selecting the target server and policy

    Figure 2 Selecting the target server and policy

  5. Click Add and Enable Protection.

  6. On the Protected Servers tab, click the status in the RASP Protection column.

  7. Check the RASP software installation progress. Wait until the message "Installation completed." is displayed.

  8. Log in to the server, go to the Spring Boot startup path, and copy the parameters from the Configure Startup Parameters step to the command box.

  9. Restart the microservice to apply the protection settings.

  10. On the Protected Servers tab, check the protection status in the Microservice Protection column. If the status is Active, the protection has been enabled.